You are viewing a plain text version of this content. The canonical link for it is here.

Posted to cvs@httpd.apache.org by Brian Behlendorf <br...@hyperreal.com> on 1997/05/12 03:20:01 UTC

cvs commit: apache-site 113announce.html

brian       97/05/11 18:20:00

  Modified:    .         113announce.html
  Log:
  Submitted by:	John Lawton <ar...@pressroom.com>
  
  URL update
  
  Revision  Changes    Path
  1.3       +1 -1      apache-site/113announce.html
  
  Index: 113announce.html
  ===================================================================
  RCS file: /export/home/cvs/apache-site/113announce.html,v
  retrieving revision 1.2
  retrieving revision 1.3
  diff -C3 -r1.2 -r1.3
  *** 113announce.html	1997/04/27 07:26:40	1.2
  --- 113announce.html	1997/05/12 01:19:59	1.3
  ***************
  *** 18,24 ****
    <LI>A hole in mod_cookies which allows outside users to scribble the
    memory stack, possibly allowing the user to gain shell access to the
    server as the user the httpd children run as. Thanks to <A
  ! HREF="ftp://ftp.secnet.com/pub/advisories/APACHE_MOD.advisory.1.13.97">Secure
    Networks</A> for advising us of this hole ahead of time and providing
    a patch for the problems.
    
  --- 18,24 ----
    <LI>A hole in mod_cookies which allows outside users to scribble the
    memory stack, possibly allowing the user to gain shell access to the
    server as the user the httpd children run as. Thanks to <A
  ! HREF="ftp://ftp.secnet.com/pub/advisories/SNI-04.APACHE_MOD.advisory">Secure
    Networks</A> for advising us of this hole ahead of time and providing
    a patch for the problems.